METAPOLICIES AND CONTEXT-BASED ACCESS CONTROL

Ronda R. Henning

doi:10.5220/0002579203550359

METAPOLICIES AND CONTEXT-BASED ACCESS CONTROL

Ronda R. Henning

2005

Abstract

An access control policy mediates access between authorized users of a computer system and system resources. Access control policies are defined at a given level of abstraction, such as the file, directory, system, or network, and can be instantiated in layers of increasing (or decreasing) abstraction. In this paper, the concept of a metapolicy, or policy that governs execution of subordinate security policies, is introduced. The metapolicy provides a method to communicate updated higher level policy information to all components of a system; it minimizes the overhead associated with access control decisions by making access decisions at the highest level possible in the policy hierarchy. This paper discusses how metapolicies are defined and how they relate to other access control mechanisms.The rationale for revisiting metapolicies as an access control option for federated enterprise architectures is presented, and a framework for further research in metapolicy use as a context based access control representation is described.

Download

Paper Citation

in Harvard Style

R. Henning R. (2005). METAPOLICIES AND CONTEXT-BASED ACCESS CONTROL . In Proceedings of the Seventh International Conference on Enterprise Information Systems - Volume 3: ICEIS, ISBN 972-8865-19-8, pages 355-359. DOI: 10.5220/0002579203550359

in Bibtex Style

@conference{iceis05,
author={Ronda R. Henning},
title={METAPOLICIES AND CONTEXT-BASED ACCESS CONTROL},
booktitle={Proceedings of the Seventh International Conference on Enterprise Information Systems - Volume 3: ICEIS,},
year={2005},
pages={355-359},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0002579203550359},
isbn={972-8865-19-8},
}

in EndNote Style

TY - CONF
JO - Proceedings of the Seventh International Conference on Enterprise Information Systems - Volume 3: ICEIS,
TI - METAPOLICIES AND CONTEXT-BASED ACCESS CONTROL
SN - 972-8865-19-8
AU - R. Henning R.
PY - 2005
SP - 355
EP - 359
DO - 10.5220/0002579203550359